C^mPc) ?3- 1/" 'dy^^.t feci 



(12) INTERNATIONAL APPLICATION PUBLISHED UNDER THE PATENT COOPER.\TION TREATY (PCT) 



(19) World '^^^^^^^^^^^ lillllllllllllllili 

(43) International Publication Date International Publication Number 

1 November 2001 (01.11.2001) pCT WO 01/82190 Al 

(51) International Patent Classification-: G06F 17/60, (74) Agent: BAR.\NO\VSKI, Edwin, M.; Porter, Wright, 
11/30, H04L 9/00 Morris & Arthur LLP, 41 South High Street, Columbus, 



OH 43215 (US). 



(21) International Application Number: PCT/USO 1/1 3232 



(81) Designated States (national): AE, AG, AL, AM, AT. AU, 

AZ, BA. BE, BG, BR, BY, BZ, CA, CH, CN, CR, CU, CZ, 
(22) International Filing Date: 25 Apnl 2001 (25.04.2001) PI^ Qg qj^^ qj,I ^R, 

HU. ID, XL, IN, IS, JP, KE, KG, KP, KR, KZ, LC, LK. LR, 

(25) Filing Language: English LS, LT, LU, LV, MA, MD. MG, MK, MN, MW, MX, MZ, 

NO. NZ, PL, FT, RO, RU, SD, SE, SG, SI, SK, SL, TJ, TM, 

(26) Publication Language: English TR. TT, TZ, UA, UG, US, UZ, VN, YU. ZA, ZW. 

t'xt\ i> ' j\ " Designated States (regional): ARIPO patent (GH, GM. 

nQ^!^«* «q/^^' ofi AnHi onnn nf. ru onnn^ 1 ^2;, SD, SL, SZ, TZ, UG, ZW), Eurasian 

09/558,898 26 Apnl 2000 (26.04.2000) US ^^^^^^ ^^^^ ^ ^ ^ ^^^^^ 

patent (AT, BE, CH, CY. DE, DK, ES, R, FR. GB, GR, IE, 
(71) Applicant (for all designated States except US): GLOBAL jj, LU, MC, NL, PT. SE, TR), OAPI patent (BF, BJ. CF, 
TRANSACTION COMPANY [USAJS]; 505 King Av- CG, CI, CM, GA. GN, GW, ML, MR, NE, SN, TD, TG). 
enue, Columbus, OH 43201 (US). 
Published: 

^= (72) Inventor; and — with international search report 

^= (75) Inventor/Applicant (for US only): RENNER, George, — before the expiration of the time limit for amending the 
= Frederick [US/US]; Residence: Dublin, Ohio, c/o 505 claims and to be republished in the event of receipt of 

^5 King Avenue, Columbus, OH 43201 (US). amendments 



[Continued on next page] 



= (54) Title: MULTI-TIERED IDENTITY VERinCATION AUTHORITY FOR E-COMMERCE 




OS 
00 



o 



(57) Abstract: Any single or combination of password log-in (1), mart card (2) or biometric (3) identification routines may be 
adapted in the system by authority software (4) used in conjunction with the user's browser and/or terminal (5). The ID author- 
ity (10) is interconnected between an enrolled user (6) and web site provider (20) and controls enrollment, customer support and 
administration. The ID authority site (10) includes interconnected web site server (101), LDAP server (102). encryption services 
server (103) and database (104) containing user and subscriber profiles. Web site providers (20) subscribing to the ID authority (10) 
includes identity verification software scripts provided by the authority (10) in their HTML pages (22). Communicadons between 
the user (5) and ID authority (10) may be encrypted through server (103). The identity data from the user (5) in compliance with the 
demand is sent in a message packet (15) to the authority (10). Depending on the comparison result, a response is sent, either failiire 
or success is sent to the user terminal (15). The user terminal (15) then transmits the verification code (23) to the identity authority 
(10). In enrolling in the system (1 1), the user (5) provides an identity profile (12) that can include a combination of biometrics and 
authentication methods (Ic), (2c), or (3c). The biometric software (7) is installed on the user terminal (15). The browser software 
includes a mechanism for conventionally communicating with a web site and for receiving a verification demand from a web site (8). 



wo 01/82190 Al 



lillliilllllllllllilllllllllllillllllllil 



For two-letter codes and other abbreviations, refer to the "Guid- 
ance Notes on Codes and Abbreviations " appearing at the begin- 
ning of each regular issue of the PCT Gazette. 



wo 01/82190 



PCT/USOl/13232 



MuLTi-TiERED Identity Verification Authority for E-commerce 

Field Of The Invention 

This invention relates to e-commerce, particularly, a mechanism and 

5 system for third party verification of the identity of Web and Internet commerce 
participants, and other participants in Web information transactions and 
communications ("e-commerce"). namely, an identity authority ("ID Authority") 
that is useful with Web and other Internet sites and their users as an 
improvement of the next generation of Internet infrastructure. 

10 Background And Summary Of The Invention 

In electronic commerce business using the World Wide Web and the 
Internet, there is a need for better proof of a customer's identity than is provided 
^ currently by password login. Most Web users also desire a more secure and 
convenient way to identify themselves for Web transactions. Financial 

15 institutions, pharmaceuticals distributors, and retailers are among the groups that 
would benefit from improved identity verification mechanisms. 

It is an object of the invention to provide a service mechanism and system 
to. act as a third party to verify identity for e-commerce participants using 
passwords, smart cards, and biometrics in a hierarchy, and combinations thereof 

20 depending on the need for security. The sen/ice will verify the identity of a 
person using a Web browser and allow that user to interact with the Web site or 
other Internet mechanism. The system can also verify the Web site to the user, 
and optionally, the personal identity of an individual user at the Web site. As a 
further option, the service can verify the personal identities of two Web 

25 participants to each other. 
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It is a further object to allow verifications to be requested at more that one 
level, instance by instance: a lower-risk action may only need smart card 
verification; a high-risk transaction may require biometric verification; or 
intermediate levels may be provided. Users are able to opt for one or more 
5 different levels of participation, with higher levels allowing them to meet requests 
for higher-level verifications. The invention is intended to benefit participants by 
removing the complexity of implementing and administering unique trust 
relationships while achieving the benefits of verified identity in electronic 
communications and transactions. 
10 It is an object of the invention to substitute for and provide analogous 

functions to the Certificate Authority function in the current Public Key 
Infrastructure (PKI) identification mechanisms. It is also an object of the invention 
to provide third-party network directory sen/ices integrated with the identity 
verification authority service. 
15 The invention is described more fully in the following description of the 

preferred embodiment considered in view of the drawings in which: 
Brief Description Of The Drawings 

. Figure 1 shows the prior art stmcture in which each user requires a 
separate and unique relationship with every other user. Every time a new user is 
20 added to the population, every member needs to add a new relationship. 

Figure 2 illustrates the identity authority mechanism and system in which 
adding a new user involves adding only one relationship with an identity authority. 
The benefits of the authority mechanism and system compound as the 
populations of Web sites and users grow. 
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Figure 3 shows system architecture and identity authority structures, 
relationships and operations in the preferred embodiment. 
Detailed Description Of The Invention And The Preferred Embodiment 

In the mechanism and system of the invention, each user will receive a kit 
5 including a smart card, a smart card reader and biometric reader, or combined 
reader. A lower-price option may be a smart card reader only. Installation 
software to install the readers and identity verification system of the invention for 
use in conjunction with a Web browser is also provided. The software may be 
stand alone for exclusive use with the system or may be provided in the user kit 
10 as a plug-in for an OEM browser such as Microsoft Explorer® or Netscape 
Navigator®. Each member / client Web site or participating Internet site will 
implement scripts in their Web content HTML pages as explained below to make 
- - use of the identity authority mechanism and directory system. 

In an example, from the user's perspective, a corporate buyer deals with 
15 different Web mart^etplaces for office supplies, financial services, construction, 
energy and maintenance, and other new areas that are added frequently. If each 
- of these maricetpiaces has its own (and likely unique) method for validating 
identity and "signing" a transaction, as shown in Figure 1, each buyer or user. U1 
- Un, will require considerable physical and intellectual overhead to maintain 
20 encrypted passwords and the like that are necessary for an entry relationship to 
all seller, S1 - Sn, web sites. If, on the other hand, the marketplaces referred the 
identity verification function to the authority mechanism and system of the 
invention as shown in Figure 2, each buyer or user would need only one set of 
credentials maintained by the Identity Authority with regard to users and sellers. 
25 Each mari^etplace operator would be relieved from the burden of maintaining a 
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verification infrastructure in instances when identity verification is required in e- 
commerce. 

The mechanism and system is useful with many categories of participants 
in Internet transactions, in addition to business transactions that depend on 

5 certification of an individual's identity. One example of such a transaction is the 
Federal government mandate that electronic benefits enrollments and renewals 
be validated using a biometric verification of identity. Other examples are the 
regulatory mandates in California and Ohio that online drug prescriptions must 
have a bibmetric or other certification of the prescribing doctor's identity. 

10 Similarly, many other large examples, such as B2B ("business-to-business") 
contracting and banking, may not have a government mandate but do have the 
interests of the participants in reducing fraud and liability exposure. 

The invention is also useful to small companies currently facing problems 
of recognition on the Web. The identity verification authority mechanism and 

15 system of the invention assists business on the Web by backing their presence. 
In B2B commerce that by 2002 is estimated to grow to nearly 75% of corporate 

^ buyers and sellers doing over $750 billion in transactions, the invention is 
likewise useful. The low cost and many-to-many Internet connectivity is 
motivating businesses to migrate in whole or in part to Web and Internet 

20 marketplaces from the Old Economy one-to-one relationships. This commercial 
movement, however, also creates new openings for misrepresentation and fraud- 
The biometric identity verification mechanism and system enhances individual 
accountability onto the Web. 
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In the preferred embodiment, a signup fee and annual renewal per user 
are charged to the user organizations and a transaction fee per verification is 
charged to the Web site seller or other provider. 

In its full multi-layer function, the invention will complement, or support, 
5 current public key encryption (PKI) certifications of authenticity (CA's) such as 
Verisign® and CyberTrust®, Legacy institutions, such as banks, and the USPS 
will find the invention readily adaptable to their use in view of the fact that many 
banks have limited technical resources. Large membership sites such as AOL®, 
and Yahoo® are configured for a very large population of loosely-held consumer 
10 relationships. To perfomn an authority service, such sites would need to change 
their business model. Such types of sites, however, have access to corporate 
relationships and technical resources through and by which the invention may be 
implemented. ^ 

With regard to partial function identification without biometrics, public key 
15 CA's can promote the use of PKI mechanism and systems to fill a digital 
signature role, and implement a mechanism to make PK certificates portable 
: using smart cards or other means. Private PKI implementations using proprietary 
software can fill the role in closed communities. In further applications, Web 
logon identity managers such as eCode.com®, Ezlogin.com®. and Digitalme® 
20 may adapt operations to the smart card and biometric roles, in the context of 
large numbers of loose relationships. 

The nature of the identity authority mechanism and system is indifferent to 
differences between business users and consumer users; the preferred 
embodiment favors a business orientation in which a population of users and a 
25 group of Web sites using the mechanism and system are quickly established in a 
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group of Web site operators that serve a shared user population. Online 
auctions are an example. Since these marketplaces are often established by a 
business that wants to operate the auction site, these operating auction 
companies are points of entry for the market. In implementing the authority 

5 mechanism and system at multiple auction operators efficiencies of simplicity and 
economy as depicted in Figure 2 can be achieved. Web based pharmacies, 
MD's, banks and Web marketplaces are also potential users. 

The system provides from the standpoint of a user, a simplified and direct 
mechanism for standardized user verification. From the standpoint of the site 

10 provider, the system offers convenience to users and adds a mechanism 
whereby access, purchase and other site functions can be predeterminedly 
controlled in accordance with specific rules and criteria related to individual users 
and transactions. 

In its general description, the system includes a user kit consisting of a 
15 smart card, a smart card reader and biometric reader, or combination, and 
software for the user's terminal, usually a PC, and browser. A lower-priced 
variant may omit biometric capability. These components are available as semi- 
custom or off-the-shelf products. On the Web provider side, the invention 
provides a mechanism and system that verifies identification packets sent by the 
20 seller's Web server, assembled from a combination of off-the-shelf products and 
custom software, in addition to the existing back room implementation. The user 
kit enables the establishment of a user identity profile inten-elated among the 
categories of log-in, smart card and biometric routines. For example, the smart 
card may include a fingerprint profile that will be compared in the identification 
25 process at the user terminal to the reading created by the biometric reader. 
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Alternatively or additionally, the fingerprint profile nnay be maintained in the 
remote ID Authority database for comparison. 

The system acts as a third party in Internet interactions, including but not 
limited to HTTP (Web), e-mail, FTP, WAP. etc.. to verify personal identity. 
5 Optionally other information such as corporate affiliations and authorizations of 
one participant to the other and personal identities and other infomnation of 
participants are verified to each other. One version, specific to a World Wide 
Web use of the invention, employs a sequence of operations as follows: 



10 Example I 

1. The ID Authority business enters an agreement with a Web 
business site to provide the identity verification function. The Web 
- site adds specific software scripts to their HTML pages wherever 
the identity verification functions are needed, 

15 2. A business Web user is enrolled in the Identity verification 

sen/ice and receives a user kit containing software components, a 
smart card reader, and a biometric reader to install on their PC, and 
a personalized smart card. " 

3. To begin a particular interaction, the user browses to the 
20 Web site and to the particular page of interest. The Web site 

downloads a page containing the scripts to use the identity 
verification service, 

4. The script in the Web page executes on the user's PC. 
making use of the software components installed from the user kit 

25 to collect the claimed identity plus evidence to support that claim; 
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specifically to access and manipulate the smart card and biometric 
reader if those options are being used. The software components 
generate a message packet to the identity authority containing the 
claimed identity and the evidence to support that identity. 

5 5. The identity authority examines the evidence provided in the 

packet and generates a response. If the comparison fails, the 
response contains only a failure notification. If the comparison 
succeeds, the response contains a success notification and a 
unique verification code. The response is sent to the user's PC. 

10 6. The scripts continuing to execute in the user's PC handle the 

response, placing the verification code and positive response in 
their positions in the requesting page. Either upon receipt or on 
. user action, the request page with the appropriate data items is 
dispatched to the Web sen/er. Either immediately or later, 

15 depending on business needs, the Web server can send a ^ 

message packet to the identity authority requesting a check of the 
- ^ verification code returned by the user. The reply to this request will 
be a simple Yes/No depending on the results of the check plus any 
requested optional information such as authorizations. 

20 \ 

The above methods may be adapted to use cryptography-based methods 
to verify identity. In a variation, the system uses smart card based methods, 
optionally in combination with cryptography methods, to verify identity and 
provide other optional infomiation. In this variation, the software components on 
25 the users PC would interact with the smart card to produce data elements, and 
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optionally, a cryptographic Message Authentication Code (MAC) for a message 
to the requesting participant. That participant could then submit the message to 
the ID Authority for verification. 

Biometric methods are optionally used in combination with smart cards 
5 and cryptography to verify identity in the preferred embodiment. A version 
adapted to World Wide Web use follows: 



Example II 

1. ' The ID Authority business enters an agreement with a Web 
10 business site to provide the identity verification function. The Web 

site adds specific software scripts to their HTML pages wherever 

the identity verification functions are needed. 
■ } 2. A business Web user is enrolled in the identity verification 

service and receives a user kit containing software components, a 
15 smart card reader, and a biometric reader to install on their PC, and M 

a personalized smart card. 

3. To begin a particular interaction, the user browses to the 
Web site and to the particular page of interest. The Web site 
downloads a page containing the scripts to use the identity 

20 verification service. 

4. The script in the Web page executes on the user's PC, 
making use of the software components installed from the user kit 
to collect the claimed identity plus evidence to support that claim; 
specifically to access and manipulate the smart card and biometric 

25 reader. The software components: (a) retrieve the claimed 
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identification and primary biometric template from the smart card 
after satisfying the smart card file access methods; (b) read a live 
fingerprint from the user, prompting if necessary; (c) match the live 
fingerprint to the template and generate a verification message 
packet containing the claimed identity, the results of the match, a 
timestamp and transaction sequence number, and a MAC 
generated by the smart card; and (d) return the identification data, 
indication of biometric match, and the verification message packet 
to the calling script. 

5. The scripts continuing to execute in the user's PC handle the 
response, placing the data elements in their positions in the 
requesting page. Either upon receipt or on user action, the request 

. page with the appropriate data items is dispatched to the Web 
- server 

6. Either immediately or later, depending on business needs. ^1 
the Web sen/er can send the verification message packet to the 
identity authority requesting a check of the MAC returned by the ' 
user. The identity authority recalculates the MAC, compares it to 
the value provided in the packet, and generates a response. If the 
comparison fails, the response to the Web server contains only a 
failure notification. If the comparison succeeds, the response 
contains a success notification and a unique verification code. 
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1 12. A user kit for the multi-tiered identity verification authority system of claim 1 

2 comprising a smart card, a smart card reader, a biometric reader and a browser 

3 plug-in. 
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Thus, it can be seen that the system offers participants case-by-case 
options on the level of identity verification to be required for Internet interaction. 
For example, a Web site could require only smart card methods for simple log-in 
but require a biometric verification to complete purchases over some threshold 

5 level of dollar value or other risk metric. 

In its implementation, the system may provide services integrated with a 
P3P implementation for negotiating one participant's access to the other 
participant's identification and other information. The services may be integrated 
with a database. X.500, or other directory implementation accessed using LDAP, 

10 DAP, or any database access protocol. A version for LDAP implementation 
follows: 



EXAMPLE III 



1. 



The ID Authority business enters an agreement with a Web 



15 



business site to provide the identity verification function. The Web 



site adds specific software scripts to their HTML pages wherever 



the identity verification functions are needed. 



2. 



A business Web user is enrolled in the identity verification 



service and receives a user kit containing software components, a 



20 



smart card reader, and a biometric reader to install on their PC, and 



a personalized smart card. 



3. 



To begin a particular interaction, the user browses to the 



Web site. The Web server returns a login request page containing 



the scripts to use the identity verification service. 
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4. The script in the Web page executes on the user's PC. 
making use of the software components installed from the user kit 
to collect the claimed identity plus evidence to support that claim, 
specifically to access and manipulate the smart card and biometric 

5 reader if those options are being used. The software components 

generate data elements containing the claimed identity and the 
evidence to support that identity. 

5. The scripts continuing to execute in the user's PC place the 
data^elements in their positions in the login request page. Either 

10 upon receipt or on user action, the log-in request with the 

appropriate data items is dispatched to the Web server. As a part 
of processing the login request the Web server assembles an LDAP 
call containing the data elements and dispatches it to the ID 
Authority LDAP server. The ID Authority server verifies identity and 

15 - places the results of the verification, plus any other related v 
authorization data, in the LDAP response message. 



With reference to Figure 3 showing the system architecture, any single or 
20 combination of password log-in 1, smart card 2, or biometric 3 identification 
routines may be adapted in the system by authority software 4 used in 
conjunction with the user's browser and/or terminal 5. The ID Authority will be 
identified as an icon on client Web pages that will also include a brief dialog for 
functions. The ID authority 10 is interconnected between an enrolled user 6 and 
25 web site provider 20 and controls enrollment, customer support and 
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administration. The ID authority site includes interconnected web site sen/er 101, 
LDAP server 102, encryption services sen/er 103 and database 104 containing 
user and subscriber profiles. Web site providers subscribing to the ID authority 
include identity verification software scripts provided by the authority in their 
HTML pages 22. 

In enrolling in the system 11, the user provides an identity profile, such as 
user name and password, smart card identification code, and a biometric indicia 
such as a fingerprint read compiled in a data file 12 maintained by the authority at 
site database t04. The user kit providing password log-in and smart card reader 
and biometric reader hardware for higher levels of authentication and authority 
software 7 is installed on the user terminal. As noted the software may be a plug- 
in for an OEM browser or a custom browser with ID authority functions integrally 
included. The user kit components are operatively interconnected with browser 
5. The user is also provided with a personalized smart card (not shown) for 
operative relationship with the reader. The browser software includes a 
mechanism for conventionally communicating with a web site and for receiving a 
verification demand from a web site 8. 

When the web site is an identity authority subscriber 20, the site prompts 
the user to comply with an identity demand when verification scripts in the web 
site HTML page 22 initiate an interaction between the user and the web site by 
downloading to the user's browser a verification script initiating the identity 
verification process. The downloaded verification script executes on the user's 
terminal and signals the user that a verification is required in one or more than 
one of the forms of a user name and password, a smart card identity, and a 
biometric identity, or a combination thereof. Upon receipt, the browser 
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mechanism prompts the user to comply with the demand, to provide identity data 
from the user in compliance with the demand, and to send a message packet to 
the authority containing the collected identity data. Communications between the 
user and ID Authority and the ID Authority may be encrypted, for example 
through server 103. The identity data from the user in compliance with the 
demand is sent in a message packet 15 to the authority. 

Examples of ID Authority functions are included in Table 1 below: 



Function 

Identification 



Table 1 
Query / Demand 

Who are you? 



Response 

I am Doug James. 



Verified Identification Who are you? 



I am Doug James. 

My verification code is 
3a665mn48277db#346& 



Verified Transaction Who are you? 
Signature v 

Who is really purchasing 



I am Doug James. 

Doug James is agreeing to this 



this lot of phamiaceuticals? transaction for XYZ Corp. 

What is your authority? My ID Authority verification code 

is 6593vz748d4827d% .... 



10 
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In the order of relative importance and security needed for the transaction 
used as an example in the table above, the tiered verification functions of 
identification, verified identification, and verified transaction signature may 
correspond to password log-in. smart card verification and biometric (eg. 
5 fingerprint) identification demands. 

In the verification process, the signal of the vieb site to the user that a 
verification is required in one or more than one of the fomns of a user name and 
password, a smart card identity, and a biometric identity is predetermined at the 
web site depending on the relative need for certainty of an identity verification 
10 related to the degree of importance of the electronic commerce to be transacted. 

The identity authority compares the data in the packet sent from the user 
with the user identity profile data 12 maintained by the authority in its database 
104. Depending on the comparison result, a response which is either a failure 
notification, or a success notification and a unique verification code, is sent to the 
15 user terminal 15 for transmission to the web site. The user temninal then 
transmits 8 the verification code to the requesting web site page, which then 
transmits the code 23 to the Identity authority for authentication that the code 
provided is in fact the code sent to the user by the ID Authority. The ID Authority 
will either approve, or disapprove, the user identity. With approval secure 
20 identity verified communications between the user and web site may proceed 
consistent with the level of identification, 1c, 2c or 3c. required and consistent 
with predetermined identity authorization activities allowed to the particular user. 
For example, some users, although their identity may be sufficiently verified may 
not have authority to make purchases, or to make purchases in excess of a given 
25 value, or to access certain information. 
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Having thus described the invention in detail, those skilled in the art will 
appreciate that, given the present disclosure, modifications may be made to the 
invention without departing from the spirit of the inventive concept herein 
described. Therefore, it is not intended that the scope of the invention be limited 
to the specific and preferred embodiments illustrations and described. Rather, it 
is intended that the scope of the invention be detemnined by the appended 
claims. 
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What is claimed is: 

1 1 . A multi-tiered identity verification authority system for e-commercecomprising: 

2 an identity authority interconnected between an enrolled user and member 

3 internet or Web site providers, the site providers subscribing to the authority and 

4 including identity verification software scripts provided by the authority in their HTML 

5 pages, the user having enrolled and provided identity data maintained by the 

6 authority; 

7 a user kit installed on a user terminal including a browser having identity 

8 verification functions and at least one of a smart card reader and a biometric reader 

9 operativeiy interconnected with the browser, and a personalized smart card, the 

0 browser including a mechanism for receiving a verification demand from a site, for 

1 prompting the user to comply with the demand, for collecting identity data from the 

2 user in compliance with the demand, and for sending in a message packet to the 

3 authority the collected identity data; 



4 the verification scripts in the site HTML page including means to begin an 

s interaction between the user and the site by downloading to the user's browser a 

6 verification script initiating an identity verification; 

7 the downloaded verification script executing on the user's terminal signaling 



8 the user that a verification is required in one or more than one of the forms of a user 

9 name and password, a smart card identity, and a biometric identity and. upon 

0 receipt, initiating the browser mechanism to prompt the user to comply with the 

1 demand, to collect identity data from the user in compliance with the demand, and to 

2 send a message packet to the authority containing the collected identity data; 

3 the identity authority comparing the data in the packet with a user identity 

4 profile in a database maintained by the authority and generating a response which is 



-17. 



wo 01/82190 



PCT/USOl/13232 



5 either a failure notification or a success notification and a unique verification code 

5 depending on the comparison and sending the response to the user terminal for 

7 transmission to the site; 

J means in the user terminal for transmitting the verification code to the 

9 requesting site page whereby the web page server transmits the verification code to 

3 the identity authority for an authentication approval or disapproval that is transmitted 

1 bacic to the site that permits or denies user access to the website. 

1 2. The verification authority of claim 1 including a smart card file access protocol. 

1 3. The verification authority of claim 2 further including interconnected 

2 mechanisms at the user terminal whereby upon receipt by the user tenninal of an 
} identity demand, the user terminal retrieves a demanded identification and biometric 
♦ template from the smart card. 

1 4. The verification authority of claim 3 in which a demand for a biometric 

2 identification results in a prompt at the user terminal that the user provide a 
} fingerprint. 

1 5. The verification authority of claim 4 in which a user provided fingerprint is 

2 compared to the fingerprint of the smart card template. 

1 6. The verification authority of claim 5 in which the identity message packet 

2 returned to the authority from the user tenminal includes a timestamp and transaction 
J sequence number. 
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1 7. The verification authority of claim 1 in which the authority includes a database 

2 of identity profiles of enrolled users with regard to verification criteria and in 
J processing the login request from the site page, the web server assembles an data 

4 base access protocol call containing the data elements demanded and dispatches it 

5 to the authority database server. 

1 8. The verification authority of claim 7 in which in the verification process, the 

2 identity authority -data base server places the results of the verification, and other 
} related authorization data, in the data base access protocol response message. 

1 9. The verification authority of claim 1 in which in the verification process, the 

2 signal of the site to the user that a verification is required in one or more than one of 

3 the fomris of a user name and password, a smart card identity, and a biometric 

* identity is predetemiined at the site depending on the relative need for certainty of an 

5 identity verification related to the degree of importance of the electronic commerce to 

5 be transacted. 

1 10. The verification authority of claim 1 in which the user kit includes a plug-in for 

2 an OEM browser. 

1 11. The verification authority of claim 1 in which the authority response includes a 

2 time stamp and a cryptographic message authentication code. 
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